CVE-2026-53178 PUBLISHED

staging: rtl8723bs: rtw_mlme: add bounds checks before ie_length subtraction

Assigner: Linux
Reserved: 09.06.2026 Published: 25.06.2026 Updated: 25.06.2026

In the Linux kernel, the following vulnerability has been resolved:

staging: rtl8723bs: rtw_mlme: add bounds checks before ie_length subtraction

Add guards to ensure ie_length is large enough before subtracting fixed IE offsets to prevent unsigned integer underflow.

Product Status

Vendor Linux
Product Linux
Versions Default: unaffected
  • affected from d3fcee1b78a533c256077f1300dd236801397cf7 to 542d65a6dbd9733baab96313c9fe76a76e93f484 (excl.)
  • affected from d3fcee1b78a533c256077f1300dd236801397cf7 to 88e994c57a79f62d5338231d8d37ee8dd98baffe (excl.)
Vendor Linux
Product Linux
Versions Default: affected
  • Version 5.15 is affected
  • unaffected from 0 to 5.15 (excl.)
  • unaffected from 7.0.13 to 7.0.* (incl.)
  • unaffected from 7.1 to * (incl.)

References